FBI Warns North Korean Hackers Using Malicious QR Codes in Spear-Phishing
Jan 09, 2026Ravie LakshmananMobile Security / Email Security The U.S. Federal Bureau of Investigation (FBI) on Thursday released an advisory...
SecurityThe
What is Identity Dark Matter?
Jan 06, 2026The Hacker NewsSaaS Security / Enterprise Security The Invisible Half of the Identity Universe Identity used to live...
Russia-Aligned Hackers Abuse Viber to Target Ukrainian Military and Government
Jan 05, 2026Ravie LakshmananCyber Espionage / Windows Security The Russia-aligned threat actor known as UAC-0184 has been observed targeting Ukrainian...
Kimwolf Android Botnet Infects Over 2 Million Devices via Exposed ADB and Proxy Networks
Jan 05, 2026Ravie LakshmananIoT Security / Mobile Security The botnet known as Kimwolf has infected more than 2 million Android...
U.S. Treasury Lifts Sanctions on Three Individuals Linked to Intellexa and Predator Spyware
Dec 31, 2026Ravie LakshmananSpyware / Mobile Security The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) on...
CSA Issues Alert on Critical SmarterMail Bug Allowing Remote Code Execution
Dec 30, 2026Ravie LakshmananVulnerability / Email Security The Cyber Security Agency of Singapore (CSA) has issued a bulletin warning of...
CISA Flags Actively Exploited Digiever NVR Vulnerability Allowing Remote Code Execution
Dec 25, 2025Ravie LakshmananVulnerability / Endpoint Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a security flaw impacting...
U.S. DOJ Charges 54 in ATM Jackpotting Scheme Using Ploutus Malware
Dec 20, 2025Ravie LakshmananCybercrime / ATM Security The U.S. Department of Justice (DoJ) this week announced the indictment of 54...
Kimsuky Spreads DocSwap Android Malware via QR Phishing Posing as Delivery App
Dec 18, 2025Ravie LakshmananMalware / Mobile Security The North Korean threat actor known as Kimsuky has been linked to a...
CISA Flags Critical ASUS Live Update Flaw After Evidence of Active Exploitation
Dec 18, 2025Ravie LakshmananVulnerability / Software Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a critical...
Storm-0249 Escalates Ransomware Attacks with ClickFix, Fileless PowerShell, and DLL Sideloading
Dec 09, 2025Ravie LakshmananRansomware / Endpoint Security The threat actor known as Storm-0249 is likely shifting from its role as...
How Can Retailers Cyber-Prepare for the Most Vulnerable Time of the Year?
Dec 08, 2025The Hacker NewsCybersecurity / Password Security The holiday season compresses risk into a short, high-stakes window. Systems run...
CISA Warns of Active Spyware Campaigns Hijacking High-Value Signal and WhatsApp Users
Nov 25, 2025Ravie LakshmananSpyware / Mobile Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday issued an alert...
China-Linked APT31 Launches Stealthy Cyberattacks on Russian IT Using Cloud Services
Nov 22, 2025Ravie LakshmananCyber Espionage / Cloud Security The China-linked advanced persistent threat (APT) group known as APT31 has been...
CISA Warns of Actively Exploited Critical Oracle Identity Manager Zero-Day Vulnerability
Nov 22, 2025Ravie LakshmananZero-Day / Software Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a critical...
